$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1B11D5AEEB4611EE8CCC9B23C4F9AE02.roa File: 1B11D5AEEB4611EE8CCC9B23C4F9AE02.roa (raw, json) Hash identifier: 3gdDplhWQG3L1i4DOKs3zmXZgbmuiSSe3Bnk3lRCsM8= Subject key identifier: BA:E5:66:23:B3:C3:57:A0:B7:2C:2A:39:B2:79:B3:C8:F5:A7:11:C0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B607 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1B11D5AEEB4611EE8CCC9B23C4F9AE02.roa Signing time: Thu 08 May 2025 16:15:18 +0000 ROA not before: Thu 08 May 2025 16:15:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141262 IP address blocks: 103.49.48.0/23 maxlen: 24 103.159.46.0/23 maxlen: 24 2001:df1:5840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46599 (0xb607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:15:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd896-fbc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:28:02:6e:7e:c3:bb:dd:16:81:31:3c:0b:53: c8:45:85:d3:ed:7c:00:c5:fe:3b:00:c1:d8:9f:ef: 95:c0:d0:c6:d4:9c:5a:e7:a1:53:e5:ea:e3:d6:a3: 15:d4:b9:45:4f:27:dd:08:0d:49:93:24:50:f6:c7: 29:c0:a2:c9:a9:af:35:a1:e7:21:a3:6a:4f:17:12: cf:d2:3b:16:a0:ca:3e:52:fa:26:d2:7d:e8:b1:03: e7:6e:bb:11:74:15:62:a9:34:4e:4c:5d:0c:e3:05: d2:ce:94:84:c8:de:68:79:1a:5c:c4:49:ec:4f:10: 2e:3c:91:c1:44:7a:c8:c8:2a:07:ee:cc:f6:ae:61: 4e:a7:3f:12:3a:24:b5:ea:32:e1:24:f2:6f:2c:8a: 17:df:aa:01:c5:e3:56:bd:ae:e2:79:1d:06:a5:15: 49:0e:5e:00:e6:5e:48:51:61:fd:64:75:ba:db:03: aa:17:9f:ae:b1:26:92:93:dc:18:10:60:4b:e1:00: b6:33:65:49:41:a0:55:a7:de:ab:2b:3c:fd:39:55: 36:78:b3:d4:16:3a:dc:86:17:bc:52:4e:0f:58:8d: 23:b0:3c:51:20:b8:31:1f:77:fa:14:0a:16:19:b7: 56:0c:55:65:31:f1:40:2d:c3:05:da:8b:7b:01:25: 0a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E5:66:23:B3:C3:57:A0:B7:2C:2A:39:B2:79:B3:C8:F5:A7:11:C0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1B11D5AEEB4611EE8CCC9B23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.48.0/23 103.159.46.0/23 IPv6: 2001:df1:5840::/48 Signature Algorithm: sha256WithRSAEncryption 2e:4e:49:8b:10:5f:72:cf:72:fb:77:3d:b6:c6:79:df:cd:a3: b4:d6:be:77:39:98:b4:f1:c7:90:3a:c5:63:34:34:18:4e:1e: 59:68:c3:fd:12:f7:44:41:29:d2:10:2f:a6:84:82:3a:19:53: 96:f6:e3:27:1a:f8:b7:b8:10:b4:e2:98:44:cd:bc:38:0e:ca: 3b:7d:8c:00:d6:cc:02:a6:94:a2:1c:63:d5:98:08:35:4b:4a: 9f:6c:8b:e1:5f:85:94:07:37:a7:0a:f8:60:37:42:b4:a4:94: 8c:aa:42:eb:e9:96:5e:48:94:d7:32:48:40:06:73:51:d6:b7: 8b:46:d7:7a:5f:16:18:88:59:27:b4:8d:4d:bf:9a:cb:6d:56: 12:fb:aa:00:f4:c2:b2:61:e0:d2:93:54:24:93:fc:e2:2d:b8: 24:0d:5f:e3:2b:03:6a:f7:b1:7b:fd:ae:09:f5:c2:29:3e:e7: 15:0a:57:72:32:91:ca:61:97:13:7c:88:51:cd:9e:a4:31:a1: f5:bc:c3:e0:77:a5:a1:e6:66:dd:c6:8d:43:a5:32:e5:07:f8: b3:9a:84:0e:d6:04:cb:84:23:dd:7c:c8:8f:df:37:af:7e:91: 47:dd:cc:29:6f:45:66:09:86:03:7e:84:77:80:d9:0f:88:19: 9d:fa:12:4d -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDALYHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTUxOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4OTYtZmJjOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUoAm5+w7vdFoExPAtTyEWF0+18AMX+OwDB2J/vlcDQxtScWuehU+Xq49aj FdS5RU8n3QgNSZMkUPbHKcCiyamvNaHnIaNqTxcSz9I7FqDKPlL6JtJ96LED5267 EXQVYqk0TkxdDOMF0s6UhMjeaHkaXMRJ7E8QLjyRwUR6yMgqB+7M9q5hTqc/Ejok teoy4STybyyKF9+qAcXjVr2u4nkdBqUVSQ5eAOZeSFFh/WR1utsDqhefrrEmkpPc GBBgS+EAtjNlSUGgVafeqys8/TlVNniz1BY63IYXvFJOD1iNI7A8USC4MR93+hQK Fhm3VgxVZTHxQC3DBdqLewElCt0CAwEAAaOCAqwwggKoMB0GA1UdDgQWBBS65WYj s8NXoLcsKjmyebPI9acRwDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFCMTFENUFF RUI0NjExRUU4Q0NDOUIyM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQBZzEwAwQBZ58uMA8EAgACMAkDBwAgAQ3xWEAwDQYJKoZI hvcNAQELBQADggEBAC5OSYsQX3LPcvt3PbbGed/No7TWvnc5mLTxx5A6xWM0NBhO Hllow/0S90RBKdIQL6aEgjoZU5b24yca+Le4ELTimETNvDgOyjt9jADWzAKmlKIc Y9WYCDVLSp9si+FfhZQHN6cK+GA3QrSklIyqQuvpll5IlNcySEAGc1HWt4tG13pf FhiIWSe0jU2/msttVhL7qgD0wrJh4NKTVCST/OItuCQNX+MrA2r3sXv9rgn1wik+ 5xUKV3IykcphlxN8iFHNnqQxofW8w+B3paHmZt3GjUOlMuUH+LOahA7WBMuEI918 yI/fN69+kUfdzClvRWYJhgN+hHeA2Q+IGZ36Ek0= -----END CERTIFICATE-----Generated at Tue May 13 00:54:47 2025 by rpki-client